Showing results for 
Search instead for 
Did you mean: 

Operation “Aurora” Hit Google & Others

The web is very noisy today about the recent attack on Google and other companies. Read all about it in our Security Insights Blog

Our MTIS alert here gives details of McAfee product coverage protection against the internet explorer zero-day vulnerability exploited as part of these attacks, and other related vulnerabilities and malware.

McAfee are actively tracking these incidents and will continue to provide updates as they become available.

If you are at all concerned that your company has been affected by this please contact your local technical support team or Support Account Manager for further assistance.


Message was edited by: Samantha Price - updated mtis link to latest bulletin on 1/16/10 6:07:27 PM CST

on 1/16/10 6:11:32 PM CST
5 Replies

Re: Operation “Aurora” Hit Google & Others

Further news:

McAfee Labs has raised the Global Threat Condition to 'Critical'. Microsoft has released "Microsoft Security Advisory (979352) Vulnerability in Internet Explorer Could Allow Remote Code Execution". This vulnerability is actively being exploited in the wild. Exploit code for this vulnerability has been made public.

For more information please see our threat centre.


Re: Operation “Aurora” Hit Google & Others

AudioParasitics Episode 80 is now available: "Operation Aurora" Episode - Dave and Jim welcome McAfee's Joe Telafici and Dmitri Alperovitch to discuss technical aspects of the recent attack.

Click here to grab the podcast.


Re: Operation “Aurora” Hit Google & Others

More details on how to protect your environment against the 'Operation Aurora' threats can be found here.

Latest blog update from George Kurtz is available here.

If you have any questions or concerns we're here to help.


Re: Operation “Aurora” Hit Google & Others

McAfee Labs Blog on Operation Aurora :-

Went Looking for IE Exploits in “Haiti”, Found Something Else

“Operation Aurora” Leading to Other Threats

More Details on “Operation Aurora”

How are McAfee customers protected from this attack?

McAfee DAT files (antivirus): Coverage will be provided for associated malware (as Exploit-Comele, Roarur.dr, and Roarur.dll in the 5862 DATs, released on January 15. Partial coverage is provided in the 5861 DATs for some components as Generic.dx!kwv, Generic Spy.e, Spy-Agent.ey, and Exploit-Comele.

Updated coverage information will be communicated through McAfee Security Advisories:



Re: Operation “Aurora” Hit Google & Others

We've created a group dedicated to Operation Aurora information, discussion and questions. Further updates will be posted to the group instead of this thread.